Overview

Overview

Opportunity attribute name

Opportunity attribute value

Specialist role

Technical Architect

Summary of the work

An innovative, exploratory project to develop a data analytics platform & use the platform to identify cyber threats from AWS protective monitoring logs. You will be developing a prototype using open source tools to collate logs from multiple AWS accounts, and work with Threat Analysts to perform data analytics.

Latest start date

Monday 12 February 2018

Expected contract length

3 months

Location

London

Organisation the work is for

Home Office

Maximum day rate

Maximum Day rate £850

About the work

About the work

Opportunity attribute name

Opportunity attribute value

Early market engagement

Who the specialist will work with

The AWS Solution Architect will be largely working independently and responsible for delivering the prototype and the required outcomes. You will be supported by part time Project Manager and Security Architect. You will also have the opportunity to work together with Cyber threat experts, who will support in the development of the threat scenarios to be explored.

What the specialist will work on

An innovative and exploratory project to develop a data analytics platform, and use the platform to identify cyber threats from AWS protective monitoring logs. You will be required to develop a prototype using open source tools to collate logs from multiple AWS accounts, and work with Threat Analysts to perform data analytics on the logs.Work on sand box environment on AWS to prove security capability and controls could be achieved for transferred to production environments.

Work setup

Work setup

Opportunity attribute name

Opportunity attribute value

Address where the work will take place

Main location for the work will be in Croydon, with some meetings in central London. There may also be a requirement for occasional travel to Manchester.Remote working may be available where necessary.

Working arrangements

Travel to regional sites to be agreed, expenses incurred from travel outside of the M25/Greater London will be subject to Home Office Travel and Subsistence Policy.

Security clearance

All staff must be SC cleared or capable of obtaining clearance.

Additional information

Additional information

Opportunity attribute name

Opportunity attribute value

Additional terms and conditions

Skills and experience

Buyers will use the essential and nice-to-have skills and experience to help them evaluate suppliers’ technical competence.

Demonstrate ability to evaluate, and independently implement from self-driven research open source Linux tools.

Have a strong understanding of networking protocols, monitoring tools, and techniques, including VPC Flow

Demonstrable ability to work with business and security stakeholders to understand their requirements, and deliver a documented capability to them.

Nice-to-have skills and experience

Have experience of open source security audit tools, such as SecurityMonkey, and traffic generation tools.

Have knowledge of Protective Monitoring best practice and SIEM solutions, such as AlienVault.

Have experience of developing scripts using the AWS API .

How suppliers will be evaluated

How suppliers will be evaluated

Opportunity attribute name

Opportunity attribute value

How many specialists to evaluate

4

Cultural fit criteria

Work collaboratively and share knowledge and experience with other team members

Be transparent and collaborative when making decisions

Take responsibility for their work

Subject matter expertise

Work in partnership with flexibility

Assessment methods

Work history

Evaluation weighting

Technical competence

60%

Cultural fit

10%

Price

30%

Questions asked by suppliers

Questions asked by suppliers

Supplier question

Buyer answer

1.
Can the authority please confirm whether this role will be inside or outside IR35?

This role is considered outside of IR35 legislation, however, it is up to the successful applicant to prove that they are outside of IR35 status as part of the on-boarding process.

2.
You mention in a previous reply that "it is up to the successful applicant to prove IR35". This is not the way IR35 intermediaries legislation works. The Public Sector End Client (Home Office in this case) must make a determination as to whether the role is IR35 or not, before the role starts. What is the IR35 status for this role?

The Home Office deems this role to be outside of IR35.

3.
Can the authority please confirm if they will be willing to sponsor an applicant for SC Clearance.

The Home Office confirms it will sponsor SC clearance.

4.
Can you confirm the assessment method is 'Work History' only?

FOR THE ATTENTION OF ALL BIDDERSDue to a technical error, only the option 'Work History' was selected. Please be aware the assessment will on the basis of 'Work History', 'References' and 'Interview'.

Help us improve the Digital Marketplace

Please do not include personal details or sensitive information about your organisation or department.